Common Vulnerabilities and Exposures by NIST

CVE-2015-0679 N/A

2015-03-28 2015-03-28

The web-authentication functionality on Cisco Wireless LAN Controller (WLC) devices 7.3(103.8) and 7.4(110.0) allows remote attackers to cause a denial of service (device reload) via a malformed password, aka Bug ID CSCui57980.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2015-0680 N/A

2015-03-28 2015-03-28

Cisco Unified Call Manager (CM) 9.1(2.1000.28) does not properly restrict resource requests, which allows remote authenticated users to read arbitrary files via unspecified vectors, aka Bug ID CSCuq44439.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2015-0658 N/A

2015-03-28 2015-03-28

The DHCP implementation in the PowerOn Auto Provisioning (POAP) feature in Cisco NX-OS does not properly restrict the initialization process, which allows remote attackers to execute arbitrary commands as root by sending crafted response packets on the local network, aka Bug ID CSCur14589.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2015-2773 N/A

2015-03-27 2015-03-27

SVM in Websense TRITON V-Series appliances before 8.0.0 allows attackers to read arbitrary files via unspecified vectors.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2015-2772 N/A

2015-03-27 2015-03-27

SVM in Websense TRITON V-Series appliances before 8.0.0 allows attackers to upload arbitrary files via unspecified vectors.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2015-2771 N/A

2015-03-27 2015-03-27

The Mail Server in Websense TRITON AP-EMAIL and V-Series appliances before 8.0.0 uses plaintext credentials, which allows remote attackers to obtain sensitive information via unspecified vectors.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2015-2770 N/A

2015-03-27 2015-03-27

Cross-site request forgery (CSRF) vulnerability in the command line page in Websense TRITON V-Series appliances before 8.0.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2015-2769 N/A

2015-03-27 2015-03-27

Multiple cross-site request forgery (CSRF) vulnerabilities in the Personal Email Manager (PEM) in Websense TRITON AP-EMAIL before 8.0.0 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

CVE-2015-2768 N/A

2015-03-27 2015-03-27

Cross-site scripting (XSS) vulnerability in Websense TRITON AP-EMAIL before 8.0.0 and V-Series 7.7 appliances allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Vendor(s): N/A

Affected OS(s) / software(s): N/A

!

This website use cookies to ensure you the best experience surfing these pages.

You can disable cookies from this website changing your browser precerences. Please, refer to your browser specific man page for more informations.

This warning will remain untile you click on "Accept cookies" link.